Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] JPEG flaw gets instant messaging worm

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] JPEG flaw gets instant messaging worm
Date: Thu, 30 Sep 2004 05:25:23 -0500 (CDT) 
http://www.theinquirer.net/?article=18770

By Nick Farrell
30 September 2004

VIRUS WRITERS have released an Internet worm that propagates using
instant messages and exploits the JPG flaw in Microsoft. Researchers
at The SANS Institute's Internet Storm Center (ISC) have had two
reports of a worm being installed using AOL messenger.

The victims complained that they received messages on America Online's
AOL Instant Messenger service that lured them to Web sites containing
a JPEG that contained the malicious code.

The messages told the users to "Check out my profile, click GET INFO!"  
But when they visited the site, the malicious code would attempt to
install backdoor software.

Additionally, messages containing a link to the site would be sent out
to all contacts on the victim's instant messenger contacts list.

The ISC said the attempts failed but showed that hackers were starting
to build code using the JPEG vulnerability.



_________________________________________
Donate online for the Ron Santo Walk to Cure Diabetes - 
http://www.c4i.org/ethan.html
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] JPEG flaw gets instant messaging worm, InfoSec News <=
Previous by Date:  [ISN] Secunia Weekly Summary - Issue: 2004-40, InfoSec News
Next by Date:  [ISN] Healthcare CIO gets tough on net policy violators, InfoSec News
Previous by Thread:  [ISN] Secunia Weekly Summary - Issue: 2004-40, InfoSec News
Next by Thread:  [ISN] Healthcare CIO gets tough on net policy violators, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]